$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft File: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft (raw, json) Hash identifier: UEPh78xTOzjWd7tDtz6/gAI8x6hwxY4/B8MwfmAuSao= Subject key identifier: DA:29:B8:B5:40:49:6D:57:E1:88:7B:29:37:0F:A9:1E:AE:E8:3A:FE Authority key identifier: A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 Certificate issuer: /CN=A91E0267/serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Certificate serial: 3479 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft Manifest number: 3475 Signing time: Thu 24 Apr 2025 15:11:09 +0000 Manifest this update: Thu 24 Apr 2025 15:11:09 +0000 Manifest next update: Thu 01 May 2025 15:11:09 +0000 Files and hashes: 1: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl (hash: eT7Ry+j+4iUJFPcj7qAcc4t+Enh4do3uvNRcbFTMThk=) 2: 77C9E89A3CDC11EEBFA0475EC4F9AE02.roa (hash: e40Fx6yfX6nJRx1dMJZUnN8AeYmm3aJoH7MptW5kCWo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:11:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13433 (0x3479) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0267, serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Validity Not Before: Apr 24 15:11:09 2025 GMT Not After : May 1 15:11:09 2025 GMT Subject: CN=680a548d-dca7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:64:c9:dd:25:c7:93:fa:2e:6a:84:d9:76:e6: f8:ad:33:37:fe:13:83:d5:b8:7b:d4:22:03:d1:4a: 1a:ba:ed:b7:8f:99:84:7e:e4:15:99:2f:4d:f8:7b: b3:40:43:1d:04:35:39:3b:b5:51:98:81:26:0f:ce: ae:db:1c:f8:d2:4b:ec:04:60:de:4c:db:c9:b7:18: 21:75:95:20:87:61:2e:22:0c:68:54:83:86:19:e0: ef:e9:5c:d7:84:1c:36:1d:f7:4e:a8:9e:d4:ec:0c: 7c:5b:ad:a2:88:16:18:23:75:14:b0:bc:d8:7d:c6: 46:76:35:ae:49:07:e2:b0:78:86:81:ab:3e:2c:27: 12:9a:37:16:8f:16:0d:14:c8:44:ee:8c:08:93:64: 51:e2:b6:e1:8f:2a:28:50:85:01:2f:90:a5:53:51: 00:6e:a1:86:a1:e4:66:4b:97:0b:26:eb:6a:fa:67: f6:24:0f:30:c9:16:11:13:82:d3:69:c6:a4:31:9d: 46:d2:ec:0c:ae:4a:9c:af:a8:2a:16:73:fa:22:ff: c7:fd:7c:40:8e:c1:a2:5a:34:73:b4:f5:6f:8c:c0: 0b:17:77:8d:3a:32:5f:3f:54:97:75:2a:fb:47:09: 8a:64:a8:08:08:6f:6b:94:4f:be:db:9f:ee:ed:22: 69:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:29:B8:B5:40:49:6D:57:E1:88:7B:29:37:0F:A9:1E:AE:E8:3A:FE X509v3 Authority Key Identifier: keyid:A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:4b:22:e7:cd:89:bb:7e:10:a3:56:67:c0:46:99:61:06:bb: a1:df:05:3e:9b:8b:11:f8:4a:f2:47:31:fa:0b:1c:73:1c:d8: 8c:b6:db:f5:4c:fa:18:f0:32:e7:29:fe:d6:02:2d:7e:75:09: 08:de:32:41:b7:c1:ad:cd:18:5f:59:34:a7:5d:29:1e:f1:4b: a5:15:1f:43:b8:e4:0b:de:9f:5e:a9:88:5d:49:bb:91:56:b0: c7:7b:8b:13:c9:05:b4:9e:68:6f:94:50:37:0c:a4:70:bb:79: 68:c5:b7:d9:b0:aa:92:dd:56:ce:d2:c2:b3:fe:49:01:af:2f: cd:4b:5d:df:7c:e1:8e:54:c8:31:55:44:28:00:be:1a:97:af: 05:97:c0:c6:49:6d:42:84:33:0a:75:f9:dc:87:54:f1:e3:a1: 14:2c:71:89:f2:dd:50:dc:18:7f:bf:9c:49:03:10:5e:1a:95: ba:e9:94:b8:39:ef:a8:29:04:d6:8a:e7:7a:d5:d9:4f:57:53: ba:ef:b1:95:35:ea:b4:45:09:40:85:87:79:fc:24:49:18:9b: 6f:92:77:62:71:dc:84:15:49:a5:92:a2:03:21:81:4c:2e:87: f3:9a:52:13:64:c1:40:3e:b8:7e:c9:19:5b:2c:ec:0b:21:52: bc:eb:c8:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAyNjcxMTAvBgNVBAUTKEEwMUQyM0Y3ODFFOEZGMzUzQjE4QkQxODgyODRDOUFE RkNEOUUzOTYwHhcNMjUwNDI0MTUxMTA5WhcNMjUwNTAxMTUxMTA5WjAYMRYwFAYD VQQDEw02ODBhNTQ4ZC1kY2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02TJ3SXHk/ouaoTZdub4rTM3/hOD1bh71CID0Uoauu23j5mEfuQVmS9N+Huz QEMdBDU5O7VRmIEmD86u2xz40kvsBGDeTNvJtxghdZUgh2EuIgxoVIOGGeDv6VzX hBw2HfdOqJ7U7Ax8W62iiBYYI3UUsLzYfcZGdjWuSQfisHiGgas+LCcSmjcWjxYN FMhE7owIk2RR4rbhjyooUIUBL5ClU1EAbqGGoeRmS5cLJutq+mf2JA8wyRYRE4LT acakMZ1G0uwMrkqcr6gqFnP6Iv/H/XxAjsGiWjRztPVvjMALF3eNOjJfP1SXdSr7 RwmKZKgICG9rlE++25/u7SJpzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNopuLVA SW1X4Yh7KTcPqR6u6Dr+MB8GA1UdIwQYMBaAFKAdI/eB6P81Oxi9GIKEya382eOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDI2Ny8xOTBFQUI1QzFE OTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196VTdHTDBZZ29USnJmelo0 NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CMGo5NEhvX3pVN0dMMFlnb1RKcmZ6WjQ1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDI2Ny8xOTBFQUI1QzFEOTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196 VTdHTDBZZ29USnJmelo0NVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8SyLnzYm7fhCjVmfARplhBruh3wU+m4sR+EryRzH6CxxzHNiMttv1 TPoY8DLnKf7WAi1+dQkI3jJBt8GtzRhfWTSnXSke8UulFR9DuOQL3p9eqYhdSbuR VrDHe4sTyQW0nmhvlFA3DKRwu3loxbfZsKqS3VbO0sKz/kkBry/NS13ffOGOVMgx VUQoAL4al68Fl8DGSW1ChDMKdfnch1Tx46EULHGJ8t1Q3Bh/v5xJAxBeGpW66ZS4 Oe+oKQTWiud61dlPV1O677GVNeq0RQlAhYd5/CRJGJtvkndicdyEFUmlkqIDIYFM LofzmlITZMFAPrh+yRlbLOwLIVK868gn -----END CERTIFICATE-----Generated at Sat Apr 26 04:38:28 2025 by rpki-client